Redocly/redoc
1
1
Fork 0
mirror of https://github.com/Redocly/redoc.git synced 2025-02-17 02:10:39 +03:00
Code Issues Packages Projects Releases Wiki Activity

fix: encode URLs in json samples linkify (xss)

Browse Source 
thanks to @masatokinugawa
This commit is contained in:
Roman Hotsiy 2020-04-27 19:47:29 +03:00
parent ffa216ea87
commit 62c01da420
No known key found for this signature in database
GPG Key ID: 5CB7B3ACABA57CB0
1 changed files with 1 additions and 1 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

2
src/utils/jsonToHtml.ts
View File

@ -56,7 +56,7 @@ function valueToHTML(value, maxExpandLevel: number) {
output += output +=
decorateWithSpan('"', 'token string') + decorateWithSpan('"', 'token string') +
'<a href="' + '<a href="' +
value + encodeURI(value) +
'">' + '">' +
htmlEncode(stringifyStringLiteral(value)) + htmlEncode(stringifyStringLiteral(value)) +
'</a>' + '</a>' +